Ransomware gang leaks data stolen in Rhode Island’s RIBridges Breach
- The Brain Cipher ransomware gang has started leaking data stolen from Rhode Island’s RIBridges social services platform, which manages various assistance programs.
- Following the discovery of malicious code, RIBridges was shut down for remediation on December 13.
- Recent leaks from Brain Cipher include personal information of approximately 650,000 individuals, including names, addresses, dates of birth, Social Security numbers, and banking details.
- Rhode Island Governor McKee acknowledged the data’s release on the dark web and urged residents to take precautions to protect their personal information.
Rhysida Hits American Addiction Centers + Publishes 2.8TB of Data
- The Rhysida ransomware group has claimed responsibility for a significant cyber-attack on American Addiction Centers (AAC), resulting in the theft of approximately 2.8TB of sensitive data.
- The breach, discovered on September 26, 2024, has led to notifications sent to 422,424 affected individuals, informing them that their personal information—including names, Social Security numbers, and health insurance details—was compromised.
- In response to the incident, AAC is offering 12 months of credit monitoring to those impacted.
- Rhysida has publicly listed AAC on its leak site, stating that most of the stolen data is now available online.
Ascension Health Notifying 5.6 Million of Data Breach
- Ascension Health has reported a significant data breach affecting 5.6 million individuals, following a cyber-attack detected on May 8, 2024.
- The breach, which occurred on February 29, involved an employee inadvertently downloading a malicious file that compromised sensitive personal information, including names, insurance details, Social Security numbers, and payment information.
- In response to the breach, Ascension is notifying affected individuals and offering support services that include 24 months of credit monitoring, a $1,000,000 insurance reimbursement policy, and identity theft recovery services.
Chinese hackers targeted sanctions office in Treasury attack
- Chinese state-backed hackers have successfully breached the Office of Foreign Assets Control (OFAC) within the U.S. Treasury Department, as disclosed in a recent letter to Congress.
- This incident, described as a “major cybersecurity incident,” involved the exploitation of the BeyondTrust remote support platform.
- The attackers specifically targeted OFAC to gather intelligence on potential sanctions against Chinese individuals and organizations.
- Additionally, the hackers also accessed the Treasury’s Office of Financial Research, although the full extent of the breach is still being evaluated
- S. officials have advised the adoption of end-to-end encrypted messaging applications to enhance communication security.
- Furthermore, the U.S. government is considering banning China Telecom’s remaining operations in the country and has introduced legislation aimed at securing American telecom networks from similar cyber threats.
New York Hospital Says Ransomware Attack Data Breach Impacts 670,000
- A ransomware attack on a New York hospital has resulted in a data breach affecting approximately 670,000 individuals.
- The incident involved unauthorized access to sensitive patient information, including names, addresses, dates of birth, Social Security numbers, and medical records.
- The hospital has initiated an investigation and is working with cybersecurity experts to assess the situation and mitigate the impact.
- Affected individuals are being notified and offered resources to help protect their personal information.
- The hospital emphasized its commitment to safeguarding patient data and is taking steps to enhance its security measures in response to the attack.